Healthcare Orgs, Take Control of Your Network! Level Up Cyber Hygiene with Diligent Vendor Vetting and Software Segmentation

Robin
Robin Berthier, Ph.D.
Apr 26, 2024
cybersecurity in healthcare medtech devices Network Perception Robin Berthier SolarWinds Breach

Spacelabs Healthcare Banner Ad

 

The digital transformation of healthcare organizations has significantly increased reliance on software and medtech devices, weaving a complex web of interdependencies in their supply chains. This shift raises critical vulnerabilities as highlighted by infamous incidents like the SolarWinds breach, underscoring the urgency for enhanced cyber hygiene practices. With recent executive orders pushing for better security protocols, healthcare organizations are under pressure to fortify their supply chains against escalating cyber threats.

What strategies can healthcare organizations employ to effectively manage the cyber hygiene of their healthcare supply chain, including software and medtech devices?

Robin Berthier, CEO and founder of Network Perception, advocates for rigorous cyber hygiene practices within healthcare supply chains on a recent episode of Expert’s Talk. He emphasizes the necessity of standard vendor questionnaires and robust security protocols and underscores the importance of continuous vendor risk assessments and software segmentation to effectively mitigate potential cyber threats, drawing lessons from major breaches like SolarWinds.

Key takeaways:

  1. Develop Standard Questionnaires for Vendors: Establishing standard questionnaires for all vendors can help assess the risks introduced by third parties and ensure they adhere to secure coding best practices.
  2. Vet Vendor Security Practices: It’s crucial to scrutinize the security practices surrounding the build environments of vendors to prevent incidents similar to the SolarWinds breach, where malware was inserted directly into the source code.
  3. Implement Software Segmentation: By applying segmentation to software, organizations can contain potential breaches within manageable risk levels, thereby minimizing widespread impact.
  4. Regular Patching and Updates: Ensuring that all software and devices within the supply chain are regularly updated and patched can significantly reduce vulnerabilities.
  5. Continuous Risk Assessment: Continual evaluation of the risks posed by vendors and their products is essential to adapting and strengthening cybersecurity measures over time.

Article written by Sonia Gossai

Follow us on social media for the latest updates in B2B!

Image

Latest

managed service
Complex AI Software Should Be Delivered as a Managed Service
February 18, 2026

Artificial intelligence software is increasing in complexity. Delivery models typically include traditional licensing or a managed service approach. The structure used to deploy these systems can influence how they operate in production environments. The CEO of Amberd, Mazda Marvasti, believes platforms at this level should be delivered as a managed service rather than under…

Read More
AI services
High Hyperscaler GPU Costs and Infrastructure Limits Drove Move to QumulusAI for Fixed-Cost AI Services and Greater Flexibility
February 18, 2026

Providing managed AI services at a predictable, fixed cost can be challenging when hyperscaler pricing models require substantial upfront GPU commitments. Large upfront commitments and limited infrastructure flexibility may prevent providers from aligning costs with their delivery model. Amberd CEO Mazda Marvasti encountered this issue when exploring GPU capacity through Amazon. The minimum requirement…

Read More
business decisions
AI Enables Faster Business Decisions, Giving Startups an Edge Over Traditional Companies
February 18, 2026

Speed in business decisions is becoming a defining competitive factor. Artificial intelligence tools now allow smaller teams to analyze information and act faster than traditional organizations. Established companies face increasing pressure as decision cycles shorten across industries. Mazda Marvasti, CEO of Amberd, says new entrants are already using AI to accelerate business decisions. He…

Read More
business insights
Amberd Delivers Real-Time Business Insights, Cutting Executive Reporting From Weeks to Minutes With ADA
February 18, 2026

Many organizations struggle to deliver real-time business insights to executives. Traditional workflows require analysts and database teams to extract, prepare, and validate data before it reaches decision makers. That process can stretch across departments and delay critical answers.. The CEO of Amberd Mazda Marvasti states that the cycle to answer a single business question…

Read More
Related
The DAISY Foundation: Impacting Nurse Careers Through Recognition
Software & Technology
The DAISY Foundation: Impacting Nurse Careers Through Recognition
February 12, 2026
AI in sterile processing
Healthcare
AI in Sterile Processing Is Proving Its Value by Acting as a Co-Pilot, Not a Replacement
February 5, 2026

Sterile processing departments are dealing with persistent operational pressures. Surgical case volumes are rising, instruments are more complex, and staffing shortages remain across many health systems. Accuracy and documentation requirements continue to tighten, leaving little room for error. In busy hospitals, sterile processing teams may handle 10,000 to 30,000 surgical instruments per day, with…

Read More
survey
Healthcare
Survey Ready Every Day: Why It’s Not Just a Once-a-Year Activity
January 13, 2026

Unannounced surveys are no longer the exception in healthcare—they’re the norm. Accrediting bodies increasingly expect sterile processing departments (SPDs) to demonstrate consistent compliance, real-time documentation, and reliable adherence to manufacturers’ instructions for use on any given day, not just during audit season. Joint Commission survey data continue to show that high-level disinfection and sterilization practices…

Read More